[3.4] tiff: Several vulnerabilities (CVE-2015-8665, CVE-2015-8683, CVE-2015-8781, CVE-2015-8782, CVE-2015-8783, CVE-2015-8784)| ID: oval:org.secpod.oval:def:1800206 | Date: (C)2018-03-29 (M)2023-12-26 |
| Class: PATCH | Family: unix |
CVE-2015-8665: Out-of-bounds read in tif_getimage.c. tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service via the SamplesPerPixel tag in a TIFF image. CVE-2015-8683: out-of-bounds read in CIE Lab image format. The putcontig8bitCIELab function in tif_getimage.c in LibTIFF 4.0.6 allows remote attackers to cause a denial of service via a packed TIFF image. CVE-2015-8781, CVE-2015-8782, CVE-2015-8783: out-of-bounds writes for invalid images.
| Platform: |
| Alpine Linux 3.4 |
